|
312701
|
9.8 |
CRITICAL
Network
|
opentext
|
arcsight_intelligence
|
Privilege escalation vulnerability identified in OpenText ArcSight Intelligence.
|
NVD-CWE-noinfo
|
CVE-2024-6359
|
2024-08-20 02:30 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312702
|
8.8 |
HIGH
Network
|
opentext
|
arcsight_intelligence
|
Insecure Direct Object Reference vulnerability identified in OpenText ArcSight Intelligence.
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2024-6357
|
2024-08-20 02:23 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312703
|
6.1 |
MEDIUM
Network
|
calibre-ebook
|
calibre
|
Unsanitized user-input in Calibre <= 7.15.0 allow attackers to perform reflected cross-site scripting.
|
CWE-79
Cross-site Scripting
|
CVE-2024-7008
|
2024-08-20 02:19 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312704
|
7.1 |
HIGH
Network
|
calibre-ebook
|
calibre
|
Unsanitized user-input in Calibre <= 7.15.0 allow users with permissions to perform full-text searches to achieve SQL injection on the SQLite database.
|
CWE-89
SQL Injection
|
CVE-2024-7009
|
2024-08-20 02:18 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312705
|
7.5 |
HIGH
Network
|
calibre-ebook
|
calibre
|
Path traversal in Calibre <= 7.14.0 allow unauthenticated attackers to achieve arbitrary file read.
|
CWE-22
Path Traversal
|
CVE-2024-6781
|
2024-08-20 02:15 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312706
|
7.5 |
HIGH
Network
|
dell
|
alienware_update
update
command_update
|
Dell Command | Update, Dell Update, and Alienware Update UWP, versions prior to 5.4, contain an Exposed Dangerous Method or Function vulnerability. An unauthenticated attacker with remote access coul…
|
CWE-610
Externally Controlled Reference to a Resource in Another Sphere
|
CVE-2024-28962
|
2024-08-20 02:12 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312707
|
9.8 |
CRITICAL
Network
|
itsourcecode
|
laravel_accounting_system
|
A vulnerability, which was classified as critical, was found in itsourcecode Laravel Accounting System 1.0. This affects an unknown part of the file app/Http/Controllers/HomeController.php. The manip…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-7495
|
2024-08-20 02:10 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312708
|
9.8 |
CRITICAL
Network
|
angeljudesuarez
|
airline_reservation_system
|
A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file flights.php. The man…
|
CWE-89
SQL Injection
|
CVE-2024-7499
|
2024-08-20 01:51 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312709
|
7.5 |
HIGH
Network
|
oretnom23
|
simple_online_bidding_system
|
A vulnerability classified as critical has been found in SourceCodester Simple Online Bidding System 1.0. This affects an unknown part of the file /simple-online-bidding-system/bidding/admin/ajax.php…
|
CWE-89
SQL Injection
|
CVE-2024-7800
|
2024-08-20 01:50 |
2024-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312710
|
9.8 |
CRITICAL
Network
|
angeljudesuarez
|
airline_reservation_system
|
A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been classified as critical. Affected is the function login/login2 of the file /admin/login.php of the component Admin…
|
CWE-89
SQL Injection
|
CVE-2024-7498
|
2024-08-20 01:50 |
2024-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
